[THIN] Re: Sasser patch

  • From: Kevin Lawson <kevin.lawson@xxxxxxxxxxxxxxxxx>
  • To: thin@xxxxxxxxxxxxx
  • Date: Thu, 06 May 2004 14:30:29 +0100

Thats the other thing, Everyone did have full control.  That is why I was
pointed towards sasser adding an extra check when loading profiles as
opposed to a general file security issue.  Also if it was a general security
problem I would expect users to fail to log into all servers not just the
one I patched.

To prove the problem I first logged in with my own account, this worked. I
then changed ownership of the folder and all files/folders within it to
administrator, It failed.  I then just changed to top level folder to
ownership of my user and it works.

Cheers

Kevin

> -----Original Message-----
> From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx]On
> Behalf Of Monahan, Thomas
> Sent: 06 May 2004 14:09
> To: 'thin@xxxxxxxxxxxxx'
> Subject: [THIN] Re: Sasser patch
>
>
> Yea, thats what we did, we changed it to the Domain
> "Administrator" account.
> In fact I think we changed some of the profiles to the local Administrator
> account on the server. When we do that there is no issue.
>
> Are you sure that its not a permissions issue after you change the
> ownership? Try giving everyone full control, and see if it makes a
> difference.
>
> Thomas
>
> > -----Original Message-----
> > From:       Kevin Lawson [SMTP:kevin.lawson@xxxxxxxxxxxxxxxxx]
> > Sent:       06 May 2004 11:54
> > To: thin@xxxxxxxxxxxxx
> > Subject:    [THIN] Re: Sasser patch
> >
> > Strange, the owner when our profiles fail is the administrator
> account of
> > the domain.
> >
> > Cheers
> >
> > Kevin
> >
> > > -----Original Message-----
> > > From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx]On
> > > Behalf Of Monahan, Thomas
> > > Sent: 06 May 2004 11:46
> > > To: 'thin@xxxxxxxxxxxxx'
> > > Subject: [THIN] Re: Sasser patch
> > >
> > >
> > > Yea, we had that issue, if you change the owner to an admin, it will
> > work.
> > > That what we did.
> > >
> > > Thomas
> > >
> > > > -----Original Message-----
> > > > From:   Kevin Lawson [SMTP:kevin.lawson@xxxxxxxxxxxxxxxxx]
> > > > Sent:   06 May 2004 10:51
> > > > To:     thin@xxxxxxxxxxxxx
> > > > Subject:        [THIN] Sasser patch
> > > >
> > > > One of the things sp4 for w2k does is make a check on the
> > > ownership of the
> > > > roaming profile before loading it.  SP4 also includes an
> > > addition to group
> > > > policy to allow you to disallow this.  I have installed the sasser
> > patch
> > > > on
> > > > one of our servers (w2k sp3) and this sp4 behaviour is now happening
> > but
> > > > without the item in group policy to disallow it.
> > > >
> > > > The only way I can get round this is by logging in as the user onto
> > > > another
> > > > server and then reclaim the ownership of the profile.  Is there
> > > anyway to
> > > > get the group policy check installed or is there a utility
> or command
> > > > where
> > > > I can reset the ownership of a profile?
> > > >
> > > > Thanks for any advice.
> > > >
> > > > Cheers
> > > >
> > > > Kevin Lawson
> > > >
> > > > ********************************************************
> > > > This Week's Sponsor - RTO Software / TScale
> > > > What's keeping you from getting more from your terminal servers? Did
> > you
> > > > know, in most cases, CPU Utilization IS NOT the single biggest
> > > > constraint to scaling up?! Get this free white paper to
> understand the
> > > > real constraints & how to overcome them. SAVE MONEY by scaling-up
> > rather
> > > > than buying more servers.
> > > > http://www.rtosoft.com/Enter.asp?ID=147
> > > > **********************************************************
> > > > Useful Thin Client Computing Links are available at:
> > > > http://thin.net/links.cfm
> > > > ***********************************************************
> > > > For Archives, to Unsubscribe, Subscribe or
> > > > set Digest or Vacation mode use the below link:
> > > > http://thin.net/citrixlist.cfm
> > >
> > >
> > > ***********************************************************
> > > The information contained in this e-mail is intended only
> > > for the individual to whom it is addressed. It may contain
> > > privileged and confidential information. If you have
> > > received this message in error or there are any problems,
> > > please notify the sender immediately and delete the message
> > > from your computer. The unauthorised use, disclosure,
> > > copying or alteration of this message is forbidden. Neither
> > > United Utilities PLC nor any of its subsidiaries will be
> > > liable for direct, special, indirect or consequential
> > > damage as a result of any virus being passed on, or arising
> > > from alteration of the contents of this message by a third
> > > party.
> > >
> > > United Utilities PLC (England and Wales No.2366616)
> > > registered office: Dawson House, Great Sankey,
> > > Warrington, WA5 3LW.
> > > ***********************************************************
> > >
> > > ********************************************************
> > > This Week's Sponsor - RTO Software / TScale
> > > What's keeping you from getting more from your terminal
> servers? Did you
> > > know, in most cases, CPU Utilization IS NOT the single biggest
> > > constraint to scaling up?! Get this free white paper to understand the
> > > real constraints & how to overcome them. SAVE MONEY by
> scaling-up rather
> > > than buying more servers.
> > > http://www.rtosoft.com/Enter.asp?ID=147
> > > **********************************************************
> > > Useful Thin Client Computing Links are available at:
> > > http://thin.net/links.cfm
> > > ***********************************************************
> > > For Archives, to Unsubscribe, Subscribe or
> > > set Digest or Vacation mode use the below link:
> > > http://thin.net/citrixlist.cfm
> >
> > ********************************************************
> > This Week's Sponsor - RTO Software / TScale
> > What's keeping you from getting more from your terminal servers? Did you
> > know, in most cases, CPU Utilization IS NOT the single biggest
> > constraint to scaling up?! Get this free white paper to understand the
> > real constraints & how to overcome them. SAVE MONEY by scaling-up rather
> > than buying more servers.
> > http://www.rtosoft.com/Enter.asp?ID=147
> > **********************************************************
> > Useful Thin Client Computing Links are available at:
> > http://thin.net/links.cfm
> > ***********************************************************
> > For Archives, to Unsubscribe, Subscribe or
> > set Digest or Vacation mode use the below link:
> > http://thin.net/citrixlist.cfm
> ********************************************************
> This Week's Sponsor - RTO Software / TScale
> What's keeping you from getting more from your terminal servers? Did you
> know, in most cases, CPU Utilization IS NOT the single biggest
> constraint to scaling up?! Get this free white paper to understand the
> real constraints & how to overcome them. SAVE MONEY by scaling-up rather
> than buying more servers.
> http://www.rtosoft.com/Enter.asp?ID=147
> **********************************************************
> Useful Thin Client Computing Links are available at:
> http://thin.net/links.cfm
> ***********************************************************
> For Archives, to Unsubscribe, Subscribe or
> set Digest or Vacation mode use the below link:
> http://thin.net/citrixlist.cfm
>

********************************************************
This Week's Sponsor - RTO Software / TScale
What's keeping you from getting more from your terminal servers? Did you
know, in most cases, CPU Utilization IS NOT the single biggest
constraint to scaling up?! Get this free white paper to understand the
real constraints & how to overcome them. SAVE MONEY by scaling-up rather
than buying more servers.
http://www.rtosoft.com/Enter.asp?ID=147
**********************************************************
Useful Thin Client Computing Links are available at:
http://thin.net/links.cfm
***********************************************************
For Archives, to Unsubscribe, Subscribe or 
set Digest or Vacation mode use the below link:
http://thin.net/citrixlist.cfm

Other related posts: